$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39332e302f32342d3234203d3e20313532373830.roa File: 3131302e3233322e39332e302f32342d3234203d3e20313532373830.roa (raw, json) Hash identifier: DNs2ALIOyrg/GWjUP/9TxemQRBZpKr8ogD23pFDPOCo= Subject key identifier: 30:F3:EF:86:58:28:CB:CD:9C:34:EA:43:21:8E:75:1C:08:17:D7:CC Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 3D5CA5632C2D1278CD0352EE5D743F10AC13D856 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39332e302f32342d3234203d3e20313532373830.roa Signing time: Wed 17 Sep 2025 08:29:44 +0000 ROA not before: Wed 17 Sep 2025 08:24:44 +0000 ROA not after: Wed 16 Sep 2026 08:29:44 +0000 asID: 152780 IP address blocks: 110.232.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:5c:a5:63:2c:2d:12:78:cd:03:52:ee:5d:74:3f:10:ac:13:d8:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 17 08:24:44 2025 GMT Not After : Sep 16 08:29:44 2026 GMT Subject: CN=30F3EF865828CBCD9C34EA43218E751C0817D7CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2f:73:39:51:00:01:47:a1:a9:53:bb:22:e4: db:3a:86:81:55:df:d3:a1:c7:14:23:81:56:16:b9: 05:5d:77:38:88:35:bf:90:5b:02:9d:7b:e4:0c:2b: fd:44:de:e1:48:97:40:5e:f1:5d:1c:8f:dd:37:4f: 9d:38:c7:e5:59:93:d1:56:5e:5f:7a:47:4e:70:c1: 2d:bb:d4:d5:5e:64:e6:b0:2a:30:de:f1:d8:5d:04: 8b:12:55:ec:9a:07:53:23:5e:04:d7:5d:15:cc:b6: bd:12:93:3b:af:35:bb:67:9d:80:fd:fb:0c:41:3a: 2a:42:54:f3:78:72:74:c2:4d:79:04:88:25:ab:35: 78:12:42:2c:80:b4:bb:fd:86:dd:a5:e6:ef:82:71: 32:38:11:82:53:b5:c1:ec:66:39:c1:31:57:f4:4e: 8e:0e:61:6d:cd:fb:6b:44:6f:45:f2:f7:32:48:63: 8b:6e:68:a4:62:9b:19:30:c7:d1:cd:5a:85:bc:c3: 06:95:ef:0f:a9:64:04:66:36:b0:2b:b5:28:75:48: ef:2e:7a:c1:e6:97:90:bf:24:cd:c5:2b:16:56:70: bd:c4:3b:75:48:10:9d:41:02:14:31:47:b8:b0:87: 08:bd:06:ea:d9:07:8e:78:69:4e:24:49:6d:11:5d: c1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F3:EF:86:58:28:CB:CD:9C:34:EA:43:21:8E:75:1C:08:17:D7:CC X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39332e302f32342d3234203d3e20313532373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.93.0/24 Signature Algorithm: sha256WithRSAEncryption c4:44:23:d5:b9:0f:9d:9a:ab:10:2b:85:b6:82:e6:60:57:9b: d0:05:ea:9d:a3:ad:eb:f4:19:ff:6d:0c:e7:99:94:9e:7b:0f: e4:13:18:be:e7:ef:ce:9d:30:35:c7:5e:90:3e:85:69:11:16: bf:17:5f:a8:d3:01:14:04:10:01:10:5e:9a:49:9a:33:89:cf: d6:9a:91:8d:09:a7:d2:ff:f2:25:d7:ca:7b:c9:1d:b3:7d:9a: f9:23:6f:8a:3c:f6:0f:43:80:de:6e:71:9f:ad:a4:b7:b5:4e: 79:1c:89:34:7d:48:16:63:32:38:b9:35:f7:b7:fd:07:5e:43: 58:82:e0:52:1e:0f:24:46:d6:6e:ea:f3:f6:a4:62:a9:bf:d4: 4f:f1:26:dc:a7:34:27:5f:7f:ac:19:c7:d5:07:fb:d0:c6:12: 6e:fb:bd:ad:c1:c6:bb:62:83:25:00:08:34:9e:b2:6f:50:af: 6a:74:88:d8:98:0e:3b:af:28:cc:9c:09:ec:09:23:ac:a4:1a: 1d:e6:b5:af:d1:a3:c4:cf:ad:9b:30:35:5b:e2:6d:8f:6a:bd: 09:ab:f5:2b:e3:b3:54:4d:f9:e4:4d:64:60:6e:8e:b3:11:91: a9:f7:bb:70:a4:56:2c:7c:49:5a:98:f7:24:c4:32:dc:a7:8e: 46:f1:cc:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPVylYywtEnjNA1LuXXQ/EKwT2FYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA5MTcwODI0NDRaFw0yNjA5MTYwODI5NDRaMDMxMTAvBgNV BAMTKDMwRjNFRjg2NTgyOENCQ0Q5QzM0RUE0MzIxOEU3NTFDMDgxN0Q3Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjL3M5UQABR6GpU7si5Ns6hoFV 39OhxxQjgVYWuQVddziINb+QWwKde+QMK/1E3uFIl0Be8V0cj903T504x+VZk9FW Xl96R05wwS271NVeZOawKjDe8dhdBIsSVeyaB1MjXgTXXRXMtr0SkzuvNbtnnYD9 +wxBOipCVPN4cnTCTXkEiCWrNXgSQiyAtLv9ht2l5u+CcTI4EYJTtcHsZjnBMVf0 To4OYW3N+2tEb0Xy9zJIY4tuaKRimxkwx9HNWoW8wwaV7w+pZARmNrArtSh1SO8u esHml5C/JM3FKxZWcL3EO3VIEJ1BAhQxR7iwhwi9BurZB454aU4kSW0RXcEDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMPPvhlgoy82cNOpDIY51HAgX18wwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzOTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbuhdMA0GCSqG SIb3DQEBCwUAA4IBAQDERCPVuQ+dmqsQK4W2guZgV5vQBeqdo63r9Bn/bQznmZSe ew/kExi+5+/OnTA1x16QPoVpERa/F1+o0wEUBBABEF6aSZozic/WmpGNCafS//Il 18p7yR2zfZr5I2+KPPYPQ4DebnGfraS3tU55HIk0fUgWYzI4uTX3t/0HXkNYguBS Hg8kRtZu6vP2pGKpv9RP8SbcpzQnX3+sGcfVB/vQxhJu+72twca7YoMlAAg0nrJv UK9qdIjYmA47ryjMnAnsCSOspBod5rWv0aPEz62bMDVb4m2Par0Jq/Ur47NUTfnk TWRgbo6zEZGp97twpFYsfElamPckxDLcp45G8cx1 -----END CERTIFICATE-----Generated at Mon Oct 20 11:59:00 2025 by rpki-client